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Abstract 

Abstract. An algebraic method is used to study the semantics of exceptions in computer languages. 
The exceptions form a computational effect, in the sense that there is an apparent mismatch between 
the syntax of exceptions and their intended semantics. We solve this apparent contradiction by defining 
ly-^ a logic for exceptions with a proof system which is close to their syntax and where their intended 

semantics can be seen as a model. This requires a robust framework for logics and their morphisms, 
which is provided by categorical tools relying on adjunctions, fractions and limit sketches. 
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Introduction 



In this paper an algebraic method is used to study the semantics of exceptions in computer languages. 
Exceptions form a computational effect, in the sense that a syntactic expression / : X — > Y is not always 
l/" - ) . interpreted as a function / : X — > Y: for instance a function which raises an exception has to be interpreted 

■ as a function / : X — >• Y + E where E is the set of exceptions. In a computer language usually exceptions 
differ from errors in the sense that it is possible to recover from an exception while this is impossible for an 

■ error; thus, exceptions have to be both raised and handled. 

To our knowledge, the first categorical treatment of computational effects is due to Moggi 116 ; this 
approach relies on monads, it is implemented in the programming language Haskell |22[ 112) . The examples 
proposed by Moggi include the states monad TX = (X x S) s where S is the set of states and the exceptions 
monad TX — X + E where E is the set of exceptions. Later on, using the correspondence between monads 
and algebraic theories, Plotkin and Power proposed to use Lawvere theories for dealing with the operations 
and equations related to computational effects, for instance the lookup and update operations for states 
and the raising and handling operations for exceptions (TTl [13] . In the framework of Lawvere theories, an 
operation is called algebraic when it satisfies some relevant genericity properties; the operations lookup and 
update for states and the operation for raising exceptions are algebraic, while the operation for handling 
exceptions is not [TH]. This difficulty can be overcome, as for instance in [23 HH] , but nevertheless from 
these points of view it is inherently more difficult to formalize the handling of exceptions than the updating 
of states. 

In this paper we use another algebraic method for dealing with computational effects. This method has 
been applied to the states effect in [3]. It has led to the discovery of a duality between states and exceptions, 
briefly presented in [3]. Our approach also provides a notion of sequential product, which is an alternative 
to the strength of a monad for imposing an evaluation order for the arguments of a n-ary function [S]. 

We look at an effect as an apparent mismatch between syntax and semantics: there is one logic which 
fits with the syntax, another one which fits with the semantics, and a third one which reconciles syntax and 
semantics. This third logic classifies the language features and their properties according to the way they 
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interact with the effect; we call this kind of classification a decoration. The decorated logic is the vertex of 
a span which relates the other logics, in a relevant category. 

This approach requires a robust framework for dealing with logics and morphisms between them. This is 
provided by the category of diagrammatic logics [51 [T] . The main ingredient for defining this category is the 
notion of categorical fraction, as introduced in [3] for dealing with homotopy theory. Fractions are defined 
with respect to an adjunction. The syntactic aspect of logics is obtained by assuming that this adjunction is 
induced by a morphism of limit sketches '7\, which implies that the adjunction connects locally presentable 
categories. For each diagrammatic logic we define models as relevant morphisms, inference rules as fractions 
and inference steps as composition of fractions. Thus, diagrammatic logics are defined from well-known 
categorical ingredients; their novelty lies in the importance given to fractions, in the categorical sense, for 
formalizing logics. 

Diagrammatic logics generalize E-doctrines, in the sense of [23 . An i?-doctrine is made of a category T 
of categories with all limits and colimits of some prescribed shapes and a category S of sketches with respect 
to distinguished cones and cocones of the same shapes. The categories S and T are locally presentable. 
Moreover they are related by an adjunction which is induced by a morphism of limit sketches. The sketches 
in S are "presentations" of the categories in T, which corresponds to the fact that T is a category of fractions 
with respect to S. 

With our point of view the non-algebraicity of the handling operation for exceptions is not an issue. In 
fact, the duality between the exceptions effect and the states effect [3J implies that catching an exception 
is dual to updating a state. It should be noted that we distinguish the private operation of catching an 
exception from the public operation of handling it (also called "try/catch"), which encapsulates the catching 
operation. 

In this paper we define diagrammatic logics for dealing with exceptions. First the category of diagram- 
matic logics is introduced in Section [1] On the one hand in Section [2] we look at exceptions from an explicit 
point of view, by introducing a type of exceptions in the return type of operations which may raise excep- 
tions. With this explicit point of view we formalize (by Definition ^. 13[) the intended semantics of exceptions 
as provided in the documentation of the computer languages Java [TU] and ML [TT|. We also introduce the 
distinction between the core operations and their encapsulation: typically between the catching and the 
handling of exceptions. This explicit point of view is expressed in terms of a diagrammatic logic denoted 
Cexpf the intended semantics of exceptions can be seen as a model with respect to C exv \. On the other hand 
in Section [3] we look at exceptions from a decorated point of view, which fits with the syntax much better 
than the explicit point of view since the return type of operations does not mention any type of exceptions. 
The key point in this logic is that the operations and equations are decorated according to their interaction 
with exceptions. This decorated point of view corresponds to another diagrammatic logic denoted Cdeco- We 
build a morphism of diagrammatic logics from Cdeco to C exp i, from which our main result (Theorem 13. 14|) 
follows: the intended semantics of exceptions can also be seen as a model with respect to Cdeco- In Sec- 
tion |4] we prove some properties of exceptions using the rules of the decorated logic and the duality between 
exceptions and states. We conclude in Section [5] with some remarks and guidelines for future work. 

1 The category of diagrammatic logics 

This paper relies on the robust algebraic framework provided by the category of diagrammatic logics [TJ |6] . 
Diagrammatic logics are defined in Section 11.11 and their morphisms in Section 11.21 

1.1 Diagrammatic logics 

The notion of diagrammatic logic is an algebraic notion which captures some major properties of logics and 
which provides a simple and powerful notion of morphism between logics. Each diagrammatic logic comes 
with a notion of models and it has a sound inference system. In a diagrammatic logic we distinguish theories, 
which are closed under deduction, from specifications, which are presentations of theories. 
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A category is locally presentable when it is equivalent to the category i?ea/(E) of set-valued models, 
or realizations, of a limit sketch E pj [§]. The category Real(E) has colimits and there is a canonical 
contravariant functor y from E to Real(E) such that y(E) generates Real(E) under colimits, is the sense 
that every object of Real(E) may be written as a colimit over a diagram with objects in y(E). 

Each morphism of limit sketches e : E — > E' gives rise, by precomposition with e, to a functor G e : 
Real(E r ) —> Real(E), which has a left adjoint F e [7]. Then F e extends e, in the sense that F e o y = y' o e up 
to a natural isomorphism. We call such a functor _F e a locally presentable functor. Then the three following 
properties are equivalent: the counit e : F e o G e => Id is a natural isomorphism; the right adjoint G e is full 
and faithful; the left adjoint F e is (up to an equivalence of categories) a localization, in the sense that it 
consists of adding inverses to some morphisms from Real(Eii), constraining them to become isomorphisms 
in Real (E2) [5]. Then it can be assumed that e is also a localization: it consists of adding inverses to some 
morphisms from Ei. 

Definition 1.1. A diagrammatic logic is a locally presentable functor such that the corresponding counit is 
a natural isomorphism. 

Definition 1.2. Let £ : S — > T be a diagrammatic logic with right adjoint 1Z. 

• The category of C- specifications is S. 

• The category of C-theories is T. 

• A model of a specification E with values in a theory O is a morphism from £E to in T, or equivalently 
(thanks to the adjunction) a morphism from E to TZ& in S. 

The bicategory of fractions associated to £ has the same objects as S and a morphism from Si to E2 in 
this bicategory is a fraction t\<j : Si — 5- £2, which means that it is a cospan (tr : Si — > E!, *~ £2 '■ t) in S 
such that Ct is invertible in T. Then a is called the numerator and r the denominator of the fraction r\er. 
It follows that we can define £(r\a) — £t~ 1 o £0 . The composition of consecutive fractions is defined as 
the composition of cospans, using a pushout in S. 

Definition 1.3. Let £ : S — > T be a diagrammatic logic with right adjoint 1Z. 

• A rule with hypothesis H and conclusion C is a fraction from C to H with respect to £. 

• An instance of a specification So in a specification S is a fraction from So to E with respect to £. 

• The inference step applying a rule p : C — ¥ T-L to an instance l : % — > E of % in E is the composition 
of fractions l o p : C — > E; it yields an instance of C in E. 

Definition 1.4. Let £ : S — > T be a diagrammatic logic with right adjoint 7£. 

• Each morphism of limit sketches e : E5 — > Et which gives rise to the adjunction £ H 1Z and which is 
a localization is called an inference system for £. 

• Then a rule t\ct is elementary if cr and r are the images, by the canonical contravariant functor y, of 
arrows s and t in E5 such that e(t) is invertible in E^; otherwise the rule t\o~ is derivable. 

Remark 1.5. An inference rule is usually written as a fraction Hl " c k , it is indeed related to a categorical 
fraction, as follows (however from the categorical point of view the numerator is on the conclusion side and 
the denominator on the hypothesis side!). First let us remark that each Hi can be seen as a specification, 
as well as C, and that the common parts in the Ti^s and in C are indicated by using the same names. Then 
let T-L be the vertex of the colimit of the H^s, amalgamated according to their common names. The fraction 
{a : C — > W <— H. : r) is defined as the pushout of % and C over their common names. Then the rule ' Hl —' Hk 
corresponds to the categorical fraction t\<t : C — > % (see Example II .6[) . In an inference system e : E5 — > Ey 
for a logic £, the limit sketch E5 describes the syntax and the morphism e provides the inference rules of 
£. Thus, the description of a diagrammatic logic via one of its inference systems can be done algebraically 
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by defining e or the image of e by the canonical funtor y (examples can be found in [5]). A diagrammatic 
logic can also be defined more traditionally by giving a grammar and a family of rules. Moreover, when the 
logic is simple enough, it may be sufficient in practice to describe its theories. 

Example 1.6 (Monadic equational logic). The monadic equational logic C meq can be defined from its 
theories. A monadic equational theory is a category where the axioms hold only up to some congruence 
relation. Precisely, a monadic equational theory is a directed graph (its vertices are called types and its edges 
are called terms) with an identity term idx '■ X — > X for each type X and a composed term g o f : X — > Z 
for each pair of consecutive terms (/ : X — y Y,g : Y — > Z); in addition it is endowed with equations 
f = g : X — > Y that form an equivalence relation on parallel terms which is a congruence with respect to 
the composition and such that the associativity and identity axioms hold up to congruence. The category 
of sets forms a £ me „-theory Set where types, terms and equations are the sets, functions and equalities. 



We can look at a rule, for instance the transitivity rule for equations — 
r\er : C — > H, as follows. 



g=h 



f=h 



, as a categorical fraction 






Remark 1.7. Following [23], let E be a type of sketch, determined by what sorts of cones and cocones 
are allowed in the sketch. Then E determines a type of category, required to have all (co)limits of the 
sorts of (co)cones allowed by E, and it determines a type of functor, required to preserve that sorts of 
(co)limits. The E-doctrine is made of these sketches, categories and functors. Each E-doctrine corresponds 
to a diagrammatic logic Le ■ Se — > Te 5 where Se is the category of E-sketches (with the morphisms of 
E-sketches), Tg is the category of ^-categories and E-functors, and £e is the left adjoint functor which 
maps each E-skctch to its theory. For instance the E-doctrine made of finite products sketches, cartesian 
categories and functors preserving finite products corresponds to the equational logic. 



1.2 Morphisms of diagrammatic logics 

An important feature of diagrammatic logics is their simple and powerful notion of morphism, which is a 
variation of the notion of morphism in an arrow category. 

Definition 1.8. Given diagrammatic logics £ : S — > T and £' : S' — > T', a morphism of diagrammatic 
logics J 7 is made of two locally presentable functors J~s : S — > S' and Tt '■ T — > T' such that the 

square of left adjoints (£,£', Ts, Tt) is induced by a commutative square of limit sketches. It follows that 
the right adjoints form a commutative square and that the left adjoints form a square which is commutative 
up to a natural isomorphim. 

This means that a morphism from C to £ maps (in a coherent way) each specification of £ to a speci- 
fication of £ and each proof of £ to a proof of £' . Moreover, it is sufficient to check that each elementary 
specification (i.e., each specification in the image of the functor y) of £ is mapped to a specification of £' 
and that each elementary proof (i.e., each inference rule) of £ is mapped to a proof of £' . The next result 
is the key point for proving Theorem 13.141 its proof is a straightforward application of the properties of 
adjunctions. 

Proposition 1.9. Let T = (J 7 s,J't) ■£—>£' be a morphism of diagrammatic logics and let Qt be the right 
adjoint of Tt ■ Let £ be a £- specification and 0' a £' -theory. Then there is a bijection, natural in £ and Q' : 

Mod c (Z,g T Q') Mod £ /(J" s £,9') . 
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2 Denotational semantics of exceptions 



In this Section we define a denotational semantics of exceptions which relies on the semantics of exceptions 
in various languages, for instance in Java [TU] and ML [TT]. Syntax is introduced in Section I2TT1 and the 
fundamental distinction between ordinary and exceptional values is discussed in Section 12.21 Sections 12.31 
and 12.41 are devoted to the definitions of a logic with an explicit type of exceptions and a specification for 
exceptions with respect to this logic. Then in Section |2~51 the denotational semantics of exceptions is defined 
as a model. We often use the same notations for a feature of a signature and for its interpretation. 

2.1 Signature for exceptions 

The syntax for exceptions in computer languages depends on the language: the keywords for raising excep- 
tions may be either raise or throw, and for handling exceptions they may be either handle, try-with or 
try-catch, for instance . In this paper we rather use throw and try-catch. More precisely, the syntax of 
our language may be described in two parts: a pure part and an exceptional part. 

The pure part is a signature Sig pure . The interpretation of the pure operations should neither raise nor 
handle exceptions. For simplicity we assume that the pure operations are either constants or unary; general 
n-ary operations will be mentioned in Section [SJ 

The signature Sig exc for exceptions is made of Sig pure together with the types and operations for raising 
and handling exceptions. In order to deal with several types of exceptions which can be parameterized, we 
introduce a set of indices / and for each index i G / we choose a pure type Pi called the type of parameters 
for the exceptions of index i. The new operations in Sig exc are the operations for raising and handling 
operations, as follows. 

Definition 2.1. Let Sig pure be a signature. Given a set of indices I and a type Pi of Sig pure for each i & I, 
the signature for exceptions Sig exc is made of Sig pure together with, for each i £ /: a raising (or throwing ) 
operation for each type Y in Sig pure : 

throwy.i ■ Pi — > Y , 

and a handling operation for each Sig exc -term / : X — > Y, each non-empty list of indices (ii,. . . ,i n ) in I 
and each family of Sig exc -tenas g\ : P^ —*Y, . . . , g n : Pi n — > Y: 

try{f} catch {ix^gi \ . . . \i„^g n } : X -> Y . 

Remark 2.2. The precise meaning of these operations is defined in Section l2~5l Roughly speaking, relying 
for instance on Java see appendix raising an exception signals an error, which may be "catched" by an 
exception handler, so that the evaluation may go on along another path. For raising an exception, throwy,i 
turns some parameter of type Pi into an exception of index i, in such a way that this exception is considered 
as being of type Y. For handling an exception, the evaluation of try{f} catch {i g} begins with the 
evaluation of /; if the result is not an exception then it is returned; if the result is an exception of index i 
then this exception is catched, which means that its parameter is recovered and g is applied to this parameter; 
otherwise the exception is returned, which usually produces an error message like "uncaught exception. . . " . 
The evaluation of try{f} catch {ii =>- <7i| ... \i n gn} for any n > 1 is similar; it is checked whether the 
exception returned by / has index i\ or Z2 . . .or i n in this order, so that whenever ij = ik with j < k the 
clause ik =>• gi k is never executed. 

2.2 Ordinary values and exceptional values 

In order to express the denotational semantics of exceptions, a major point is the distinction between two 
kinds of values: the ordinary (or non-exceptional) values and the exceptions. It follows that the operations 
may be classified according to the way they may, or may not, interchange these two kinds of values: an 
ordinary value may be tagged for constructing an exception, and later on the tag may be cleared in order to 
recover the value; then we say that the exception gets untagged. Let us introduce a set E called the set of 
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exceptions. For each set X we consider the disjoint union X + E. The denotational semantics of exceptions 
relies on the following facts. Each type X in Sig exc is interpreted as a set X. Each term / : X — > Y is 
interpreted as a function / : X — > Y + E, and whenever / is pure this function has its image in Y. The fact 
that a term / : X — > Y is not always interpreted as a function / : X — >■ Y implies that the exceptions form 
a computational effect. 

Definition 2.3. For each set X, an element of X + E is an ordinary value if it is in X and an exceptional 
value if it is in E. A function f : X — >Y + E or f:X + E— > Y + E raises an exception if there is some 
x 6 X such that fix) € E and / recovers from an exception if there is some e 6 E such that /(e) G Y. A 
function f : X + E — > Y + E propagates exceptions if /(e) = e for every eGi?. 

Remark 2.4. Clearly, a function f : X + E — > Y + E which propagates exceptions may raise an exception 
but cannot recover from an exception. Such a function / is characterized by its restriction f\x '■ X — > Y + E. 
In addition, every function /q : X — > Y can be extended in a unique way as a function f : X + E — > Y + E 
which propagates exceptions; then f\x is the composition of /o with the inclusion of Y in Y + E. 

Remark 2.5. An important feature of a language with exceptions is that the interpretation of every term 
is a function which propagates exceptions; this function may raise exceptions but it cannot recover from an 
exception. Indeed, the catch block in a try-catch expression may recover from exceptions which are raised 
inside the try block, but if an exception is raised before the try-catch expression is evaluated, this exception 
is propagated. Thus, the untagging functions that will be introduced in Section [2. 31 in order to recover from 
exceptions are not the interpretation of any term of the signature Sig exc . In fact, this is also the case for the 
tagging functions that will be used for raising exceptions. These tagging and untagging functions are called 
the core functions for exceptions; they are private in the sense that they do not appear in Sig exc , but they 
are used for defining the public operations for raising and handling exceptions which are part of Sig exc . 

2.3 Explicit logic for exceptions 

Let us define a logic with a type of exceptions by describing its theories. 

Definition 2.6. A theory of the explicit logic for exceptions £ exp i is a monadic equational theory (as in 
Example II .6p with a distinguished type E called the type of exceptions and with a cocone (normal x ■ X —> 
X + E «— E : abrupt x ) for each type X, which satisfies the coproduct universal property up to congruence: 
for every cocone (/ : X — > Y <— E : k) there is a term [f\k] : X + E — > Y, unique up to equations, such that 
[f\k] o normal x = f and [f\k] o abrupt x = k. 

Definition 2.7. Let E denote a set, then Sets, expl denotes the C exp i-theory where types, terms and equa- 
tions are the sets, functions and equalities, where E is the set of exceptions and where for each set X the 
cocone (X — > X + E <— E) is the disjoint union. 

Remark 2.8. In addition, it can be assumed that there is an initial type (up to congruence) in each explicit 
theory, hence a unique term [] x : — > X for each type X such that the cocone (idx ■ X — > X <— : [] x ) is 
a coproduct up to congruence. 

2.4 Explicit specification for exceptions 

In order to express the meaning of the raising and handling operations we introduce new operations (called 
the core operations) and equations in such a way that the functions for raising and handling exceptions are 
now defined in terms of the core operations. 

Definition 2.9. Let Sig pure be a signature. Given a set of indices I and a type Pi in Sig pure for each i 6 /, 
the explicit specification for exceptions Y, exp i is the £ezpi-specincation made of Sig pure together with for each 
i <E I: an operation tj : Pi — > E called the exception constructor or the tagging operation of index i and an 
operation a : E — > Pj + E called the exception recovery or the untagging function of index i, together with 
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the equations c% o ti = idp i and Cj o tj = abrupt P o tj for all j ^ i. Then for each i € I the raising and 
handling functions are defined as follows: the raising function throwy,i for each type Y in Sig pure is: 



and the handling function: 



throwy.i — abrupt Y ° ti : Pi — > Y + E 



try{f} catch{h=>gi\ . . . \i n ^9n} ■ X -> Y + E 



for each term / : X — ► Y + E, each non-empty list of indices . . . , i n ) and each terms gj : Pi j — > Y + E 
for j — 1, . . . , n is defined in two steps: 

(try) the function try{f} k : X ^ Y + E is defined for any function k : E —> Y + E by: 



try{f} k 



normals 



of 



(catch) the function catch {i\ gi\ ■ • • \i n 9n} '■ E — > Y + E is obtained by setting p = 1 in the family 
of functions k p — catch \i p g p \ . , . \i n <?„} : _E — > Y + i? (for p = 1, . . . , n + 1) which are defined 
recursively by: 

{abrupt Y when p = n + 1 

[ g p | fc p+ i ] o c ip when p < n 



kp — 



Remark 2.10. When n = lwe get simply: 

try{f} catch {i => g} = normaly] [g\abrupt Y ] ° Ci 



of 



which can be illustrated as follows, with try{f} k on the left and k = catch {i g} on the right: 




Y + E 




Y + E 



abrupt 



Remark 2.11. About the handling function try{f} catch {ii => <?i| . . . \i n =>• g n }, it should be noted that 
each gi may itself raise exceptions and that the indices i\, . . . , i n form a list: they are given in this order and 
they need not be pairwise distinct. It is assumed that this list is non-empty because it is the usual choice in 
programming languages, however it would be easy to drop this assumption. 



2.5 The intended semantics of exceptions 

As usual, a Sig-algebra M, for any signature Sig, is made of a set M(X) for each type X in Sig and a 
function M (/) : M{X X ) x • • • x M(X n ) -> M (Y) for each operation / : X x , . . . ,X n -)• Y. 

Definition 2.12. Given a .Sig^^-algebra M pure , the model of exceptions M exp i of Y> exp i extending M pure 
has its values in Set#, exp f, it coincides with M pure on Sig pure , it interprets the type E as the disjoint union 
E = Pi an d the tagging operations ti : Pj —> E as the inclusions. 

It follows that the interpretation of the tagging operation maps a non-exceptional value a £ P, to an 
exception t,(a) G £J (for clarity we keep the notation tj(a) instead of a). Then, because of the equations, 
the interpretation of the untagging operation : E — > Pi must proceed as follows: it checks whether its 
argument e is in the image of ti, if this is the case then it returns the parameter a £ Pj such that e = tj(a), 
otherwise it propagates the exception e. It is easy to check that the next Definition corresponds to the 
description of the mechanism of exceptions in Java: see remark 12.21 and Appendix |XJ 
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Definition 2.13. Given a signature Sig pure and a Sig pure -algebra M pure , the intended semantics of excep- 
tions is the model M exp i of the specification T, exp i extending M pure . 

Remark 2.14. It follows from Definition 12.131 that the intended semantics of exceptions cannot be seen as 
a Sig exc -a\gebra. Indeed, although there is no type of exceptions in Sig exc , the operation throwy,i '■ Pi — > Y 
in Sig exc has to be interpreted as a function throw Y,i '■ Pi - *■ Y + E, where the set of exceptions E is usually 
non-empty. 

2.6 About higher-order constructions 

Definition 12.131 can easily be extended to a functional language. In order to add higher-order features to our 
explicit logic, let us introduce a functional type Z w for each types W and Z. Then each ip : W — > Z + E 
gives rise to Xx.(p : t — > (Z + E) , which does not raise exceptions. It follows that try{Xx.(p} catch {i\ => 
g%\ . . . \i n =>.9ri} = Xx.ip, which is the intended meaning of exceptions in functional languages like ML [TT] . 

3 Exceptions as a computational effect 

According to Definition 12.131 the intended semantics of exceptions can be defined in the explicit logic as a 
model M exp i of the explicit specification T, exp i- However, by introducing a type of exceptions, the explicit 
logic does not take into account the fact that the exceptions form a computational effect: the model M exp i 
cannot be seen as an algebra of the signature Sig exc for exceptions (Definition 12. ip since (denoting X for 
M exp i(X) for each type X) the operation throwy,i ■ Pi ~ > Y is interpreted as a function from Pi to Y + E 
instead of from Pi to Y: this is a fundamental remark of Moggi in [To] . 

In this Section we build another logic Cdeco, called the decorated logic for exceptions, and a decorated 
specification Sdeco for exceptions which reconciles the syntax and the semantics: Sd eco fits with the syntax 
since it has no type of exceptions, and it provides the intended semantics because this semantics can be seen 
as a model Mdeco of Sdeco- In the decorated logic the terms and the equations are classified, or decorated, 
and their interpretation depends on their decoration. 

The decorated logic is defined in Section I3TT1 In Section I3~2l we define the decorated specification T,d eco 
and the model Mdeco of £<2eco and we prove that Mdeco provides the intended semantics of exceptions. The 
rules of the decorated logic are used for proving some properties of exceptions in Section 01 

3.1 Decorated logic for exceptions 

Here we define the decorated logic for exceptions Cdeco, by giving its syntax and its inference rules, and we 
define a morphism from Cdeco to C exp i for expliciting the meaning of the decorations. The syntax of Cdeco 
consists in types, terms and equations, like C meq in Example ll.61 but with three kinds of terms and two kinds 
of equations. The terms are decorated by (0), (1) and (2) used as superscripts, they are called respectively 
pure terms, propagators and catchers. The equations are denoted by two distinct relational symbols, = for 
strong equations and ~ for weak equations. 

The expansion functor is the locally presentable functor F e> s : Sdeco — > Sexpi defined in Figure [TJ by 
mapping each elementary decorated specification (type, decorated term, decorated equation) to an explicit 
specification. Note: in the explicit specifications the type of exceptions E may be duplicated for readabil- 
ity, and the superscript (d) stands for any decoration. Thus, the expansion provides a meaning for the 
decorations: 

(0) a pure term may neither raise exceptions nor recover form exceptions, 

(1) a propagator may raise exceptions but is not allowed to recover from exceptions, 

(2) a catcher may raise exceptions and recover form exceptions. 

(=) a strong equation is an equality of functions both on ordinay values and on exceptions 
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(~) a weak equation is an equality of functions only on ordinay values, maybe not on exceptions. 

Remark 3.1. It happens that the image of a decorated term by the expansion morphism can be characterized 
by a term, so that we can say "for short" that the expansion of a catcher : X —> Y "is" / : X+E — > Y+E, 
the expansion of a propagator : X — > Y "is" fi : X — > Y + E where f\ = / o normal x, and the expansion 
of a pure term /W : X -+ Y "is" /o : X — > Y. In a similar way, we say that the expansion of a type Z "is" 
Z . This is stated in the last column of Figure [TJ However this may lead to some misunderstanding. Indeed, 
while the image of a specification by the expansion morphism must be a specification, the image of a type 
does not have to be a type and the image of a term does not have to be a term. 





^deco 


Fe,S^deco 


^e,sS deco "for short" 


type 


z 


z 

■\-normal 

Z + E 

^abrupt 

E 


Z 


catcher 


f 

X- >Y 


X Y 

4- Jr 4- 

x + £ — !— >y + £ 


X + E >Y + E 


propagator 


f (i) 

X— >Y 


X Y 
4" r 4" 

x + £ — — >y + £ 
t = t 

£ 

id 


fi — fo normal 

X— — >Y + E 


pure term 


f(0) 

X— — >Y 


x — * — >r 

4* = £ 4" 

x + £ — ->y + £ 
t = t 

E >E 

id 


x f ° >Y 


strong equation 


f(d) = g(d) . 

X -> Y 


f = g: 

X + E -^Y + E 


f = 9 


weak equation 


fid) ^ g(d) . 

X -> Y 


f o normalx = g ° normalx '■ 
X ->Y + E 


fx = .91 



Figure 1: The expansion morphism 

The rules of Cdeco are given in Figure EJ The decoration properties are often grouped with other proper- 
ties: for instance, "/ ~ g^- 1 '" means u fW and g^> and / ~ g"; in addition, the decoration (2) is usually 
dropped, since the rules assert that every term can be seen as a catcher. According to Definition 11.81 the 
expansion morphism maps each inference rule of C exv i to a proof in C exp i; this provides the meaning of the 
decorated rules. 

(a) The first part of the decorated monadic equational rules for exceptions are the rules for the monadic 

equational logic; this means that the catchers satisfy the monadic equational rules with respect to the 
strong equations. 

(b) The second part of the decorated monadic equational rules for exceptions deal with the conversions 
between decorations and with the equational- like properties of pure operations, propagators and weak 
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(a) Monadic equational rules for exceptions (first part) 
f:X^Yg:Y^Z X 



gof:X^Z idx-X^X 

f:X^Y g:Y -> Z h : Z -> W f : X -> Y f : X -} Y 

ho (g o f) = (ho g) o f f o id x = I idy o / = / 

/ / = .9 / = .9 g = ft 

/ = / 5 = / f = h 

f:X^Y gi =g 2 :Y^Z h=.f 2 :X^Y g:Y^Z 



fli o £ = Q2 o I : X ->■ Z g o fi = g o f 2 : X ^ Z 

(b) Monadic equational rules for exceptions (second part) 

/(0) fW X /(°) ,g(°) /W #W 

F (g°/) (0) '(.9°/) (1) 

/ (1) -g (1) / = g / /~g /~g g~ft 

f = g f ~ g / ~ / g ~ / / ~ ft 



gl ° / ~ g2 ° / g ° /l -g° /2 



(c) Rules for the propagation of exceptions 

:X^Y fc( 2 ) : X -> Y 



VfcW : X y Vfc ~ fc 



(d) Rules for a decorated initial type 

x x f ■. o -> y 



(e) Rules for case distinction with respect to X + 

ffWiX-^Y fc< 2 ):(D^y 9 «:X->-Y fc( 2 ):0^y g^-.X^Y fc( 2 ):(D-)-y 
[ ff |fc] (2) :X^y [g|fc]~g [g|fc]°[]x = fc 
gW : X -> y fc< 2 > : -» y /( 2 > : X -» y / ~ g fo[] x = k 
HMM 

(f) Rules for a constitutive coproduct (q^ : X; t — > X)i 

{fP-.X^Y), (f^:X^Y) t 



(jf> : X t -» Y) t /< 2 > : X -» y Vi/o^/, 



Figure 2: Decorated rules for exceptions 
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equations. Every strong equation is a weak one while every weak equation between propagators is a 
strong one. Weak equations do not form a congruence since the substitution rule holds only when the 
substituted term is pure. 

(c) The rules for the propagation of exceptions build a propagator Vfc from any catcher fc. The expansion 

of Vfc is defined as [fc o normal x\ abrupt x ] : X + E — > Y + E: it coincides with the expansion of k on 
X and it propagates exceptions. 

(d) The rules for a decorated initial type together with the rules in (b) imply that every propagator from 

to any X is strongly equivalent to [} x . The expansion of and [ ] x ^ are the initial type (D and the 
term [] x , respectively, as in remark [2.81 

(e) The pure coproduct (idx : X — > X + -s— : [] x ) has decorated coproduct properties which are given 

(2) 

by the rules for the case distinction with respect to X + 0. The expansion of [g\k] y ' : X — >• Y is the 
case distinction [gi\k] : X + E — >• Y + E with respect to X + E (where + E is identified with E, so 
that fc : E — > Y + E). This can be illustrated as follows, by a diagram in the decorated logic (on the 
left) or in the explicit logic (on the right); more details are given in Appendix iBl 




(f) The rules for a constitutive coproduct build a catcher from a family of propagators. Whenever (g| : 
Xi — > X)i is a constitutive coproduct the family (g^i : Xj X + E)i is a coproduct with respect to 
the explicit logic. 



The decorated rules are now used for proving a lemma that will be used in Section [ 

Lemma 3.2. For each propagator g^ : X — > Y we have g o [] x = [] Y and g = [g \ [] Y ]- 

Proof. In these proofs the labels refer to the kind of rules which are used: either (a), (b), (d) or (e). First, 
let us prove that go [] x = [ ] y : 

' * 9 '- x ^ Y M w ■%- w 



(6) 



9° l\x = Uy 

This first result is the unique non-obvious part in the proof of g = [g | 

(d) 
(b) 



JyJ- 



y 


Hi? 


: - 


-)■ y 


IP 


: - 


y 


[]? 


: - 


-»■ y 



J W :X^Y []?:0^Y gM-.X^Y W A ff o[], 

(e) 



□ 
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Remark 3.3. The morphism of limit sketches e : E5 — > Et which induces the decorated logic is easily 
guessed. This is outlined below, more details are given in a similar exercice in [2]. The description of 
E5 can be read from the second column of Figure Q] There is in the limit sketch E5 a point for each 
elementary decorated specification and an arrow for each morphism between the elementary specifications, 
in a contravariant way. For instance Eg has points type and catcher, and it has arrows source and target 
from catcher to type, corresponding to the morphisms from the decorated specification Z to the decorated 
specification f^ : X — > Y which map Z respectively to X and Y. As usual, some additional points, arrows 
and distinguished cones are required in E5. The description of e can be read from Figure [2] The morphism 
e adds inverses to arrows in E5 corresponding to the inference rules, in a way similar to Example II .61 but in 
a contravariant way. 

Remark 3.4. In the short note [3] it is checked that, from a denotational point of view, the functions for 
tagging and untagging exceptions are respectively dual, in the categorical sense, to the functions for looking 
up and updating states. This duality relies on the fact that the states are observed thanks to the lookup 
operations while dually the exceptions are constructed thanks to the tagging operations. Thus, the duality 
between states and exceptions stems from the duality between the comonad X x S (for some fixed S) and 
the monad X + E (for some fixed E). It happens that this duality also holds from the decorated point of 
view. 

Most of the decorated rules for exceptions are dual to the decorated rules for states in [4]. For instance, 
the unique difference between the monadic equational rules for exceptions (parts (a) and (b) of Figure [2]) and 
the dual rules for states in [3] lies in the congruence rules for the weak equations: for states the replacement 
rule is restricted to pure g, while for exceptions it is the substitution rule which is restricted to pure /. 
The rules for a decorated initial type and for a constitutive coproduct (parts (d) and (f ) of Figure [5]) are 
respectively dual to the rules for a decorated final type and the rules for an observational product in 
The rules for the propagation of exceptions and for the case distinction with respect to X + (parts (c) and 
(e) of Figure [2]) are used only for the construction of the handling operations from the untagging operations; 
these rules have no dual in [4] for states. 

Remark 3.5. For a while, let us forget about the three last families of rules in Figure [21 which involve 
some kind of decorated coproduct. Then any monad T on any category C provides a decorated theory Ct, 
as follows. The types are the objects of C, a pure term f^ : X — > Y is a morphism / : X — > Y in C, 
a propagator : X — » Y is a morphism / : X — > TY in C, a catcher : X — > Y is a morphism 
/ : TX — > TY in C. The conversion from pure to propagator uses the unit of T and the conversion from 
propagator to catcher uses the multiplication of T. Composition of propagators is done in the Kleisli way. 
A strong equation f^ = g&> : X — > Y is an equality / = g : TX — > TY in C and a weak equation 
/(2) ^ g W -.X^Y is an equality / o rjx = g Vx ■ A — >• TY in C, where r\ is the unit of the monad. It is 
easy to check that the decorated monadic equational rules of Cdeco are satisfied, as well as the rules for the 
propagation of exceptions if Vfc = k o rjx ■ X — ► TY for each k : TX — > TY. 

3.2 Decorated specification for exceptions 

Let us define a decorated specification S^eco for exceptions, which (like T, exp i in Section I2.4[) defines the 
raising and handling operations in terms of the core tagging and untagging operations. 

Definition 3.6. Let Sig pure be a signature. Given a set of indices I and a type Pi in Sig pure for each i £ 7, 
the decorated specification for exceptions Tideco is the £d e co-specification made of Sig pure with its operations 

decorated as pure together with, for each i e I, a propagator Q 1 ' : Pi — > and a catcher c\ 2 ^ : — > Pi with 
the weak equations a o ti ~ id : Pi — > Pi and Cj otj ~ [] o tj : Pj Pi for all j ^ i. Then for each i £ I the 
raising propagator (throw y,%)^ '■ Pi —±Y for each type Y in Sig pure is: 

throwy.i — []y °ti 

and the handling propagator (try{f} catch {i\ =4> g\\ . . . \i„ g n })^ '■ A — > Y for each propagator : 
X — > Y , each non-empty list of indices (i\, . . . , i n ) and each propagators g^ : Pi j — > Y for j = 1, . . . , n is 
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defined as: 

try{f} catch{ii=>gi\ . . . \i n ^g n } = V TRY{f} catch {ii=>gi\ . . . \i n ^g n } 
from a catcher TRY{f} catch {ii => g\ \ . . . \i n =^g n } ■ X — > Y which is defined as follows in two steps: 
(try) the catcher TRY{f} k : X — >• Y is defined for any catcher A; : — !• y by: 



(TRY{f}k) 



(2) 



idf | 



(2) 



Of 



(1) 



(catch) the catcher catch {i\ g%\ . . . \i n =>• g n } : (D — >• Y is obtained by setting p = 1 in the family of 
catchers fc p = catch {i p => g p \ . . . |i n =>(?„} :©—>!" (for p = 1, . . . ,n + 1) which are defined recursively 
by: 

, when p = n + 1 

k)f> = < r ,(2) 




o c 



(2) 



when p < n 



Remark 3.7. Let ft = try{f} catch {i± =£■ <ji| . . . |i n =>■ <?„} and -ff = T7?y{/} ca£c/i {i\ => gi \ . . . \i n g n }. 
Then h is a propagator and H is a catcher, and the definition of h is given in terms of H. The expansions 
of h and H are functions from X + E to V + E which coincide on X but differ on E: while h propagates 
exceptions, H catches exceptions according to the pattern catch {ii=>5i| • ■ • \i n =^gn}- 

Remark 3.8. Since fc n +i = [] Y , by Lemma 13.21 we have [g n \k n+ i] = g n . It follows that when n — 1 and 2 
we get respectively: 



try{f} catch {i =>- #} = y ( [j'dy | 5 o a] of) 
try{f} catch {i^g \j=>h} = S7 ( [id \ [9 \ h o c,-] o c»] o / 



(2) 
(3) 



When n = 1 this can be illustrated as follows, with TRY{f} k on the left and k = catch {i =>• g} on the 
right: 

Y _ Pi 





Lemma 3.9. Let Sig pure be a signature, I a set and Pi a type in Sig pure for each i £ I. Let T, exp i be 
the corresponding explicit specification for exceptions (Definition \2. 9]) andY^deco the corresponding decorated 
specification for exceptions fDefinition \3.6\) . Then T, exp i = F e T,deco- 



Proof. This is easy to check: in Definition 12.91 T, exp i is described as a colimit of elementary specifications, 
and F e , as any left adjoint functor, preserves colimits. □ 

Proposition 3.10. The functor F e ^s '■ S^eco — > Sexpi defined in Figure [7] is locally presentable and it 
determines a morphism of logics F e : Cdeco C eX pi- 

Proof. The fact that F et s is locally presentable is easily deduced from its definition in Figure [T] It has 
been checked that F e< s maps each decorated inference rule to an explicit proof, thus it can be extended as 
-F e ,T : Tdeco T exp i in such a way that the pair F e — (F e> s, Fc,t) is a morphism of logics. □ 



Definition 3.11. The morphism F e : Cdeco C exp i is called the expansion morphism. 
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3.3 The decorated model provides the intented semantics of exceptions 



Following Definition 12.131 the intended semantics of exceptions is a model with respect to the explicit logic. 
Theorem 13.141 will prove that the intended semantics of exceptions can also be expressed as a model with 
respect to the decorated logic. 

Definition 3.12. For any set E, called the set of exceptions, we define a decorated theory Sets, deco as 
follows. A type is a set, a pure term : X — > Y is a function / : X — > Y, a propapagator /W : X — > Y 
is a function / : X — > Y + E, and a catcher : X — > Y is a function f : X + E — > Y + E. It follows 
that in Sets, deco every pure term / : X —±Y gives rise to a propagator normaly ° / : X — > Y + E and that 
every propagator / : X — > Y + E gives rise to a catcher [f\abrupt Y ] ■ X + E — > Y + E. By default, / stands 
for f( 2 K The equations are defined when both members are catchers, the other cases follow thanks to the 
conversions above. A strong equation / = g : X — > Y is the equality of functions f — g: X + E^Y + E 
and a weak equation / ~ g : X — > Y is the equality of functions / o normalx = g ° normalx '■ X Y + E. 

Lemma 3.13. Let G e ,T be the right adjoint to F e ^T- Then Sets. deco — Ge,T^^B,expl- 

Proof. The morphism of limit sketches ip e , corresponding to the locally presentable functor -F e ,T, is easily 
deduced from Figure[T] By definition of G e ,T we have G e ,TSetE,expi — SetE,expl ° fe- The lemma follows by 
checking that the definition of Set e, deco (Definition 13.1 2 j) is precisely the description of Set E.expi ° Pe- D 

Our main result is the next theorem, which states that the decorated point of view provides the intended 
semantics of exceptions. The key point is the existence of the expansion morphism from the decorated to 
the explicit logic. The proof is simple, using the fact that theexpansion morphism, like every morphism in 
the category of diagrammatic logics, is a left adjoint functor. 

Theorem 3.14. The model M^eco of the specification E^eco with values in the theory Sets deco in the 
decorated logic provides the intended semantics of exceptions. 

Proof. According to Definition 12.131 the intended semantics of exceptions is the model M exp i of £ e zpi with 
values in Sets, expl m the explicit logic. In addition, Mdeco is a model of Edeco with values in Sets, deco m the 
decorated logic. Furthermore, we know from Lemmas 13.91 and 13.131 that T* exp i — F e Yid eco and SetE,deco — 
G e SetE,expi, where G e is right adjoint to F e . Thus, it follows from proposition 11.91 that there is a bijection 
between Modc expl (^ex P i, Sets, ex P i) and Modc ieco (S deco, Sets, deco)- Finally, it is easy to check that Mdeco 
corresponds to M eX pi in this bijection. □ 

3.4 About higher-order constructions 

We know from Section 12.61 that we can add higher-order features in our explicit logic. This remark holds 
for the decorated logic as well. Let us introduce a functional type Z w ^ d ' for each types W and Z and 
each decoration (d) for terms. The expansion of Z w( ^> is Z w , the expansion of Z w ^ is (Z + E) w and 
the expansion of Z w< - 2 ~> is (Z + E)( w+E \ Then each ip^ : W -> Z gives rise to Xx.(p : 1 -4- Z w( ~ d \ 
and a major point is that Xx.ip is pure for every decoration (d) of (p. Informally, we can say that the 
abstraction moves the decoration from the term to the type. This means that the expansion of (Xx.ip)^ 
is Xx.ip : 1 — > F e (Z w ( d * > ), as required: for instance when p^ is a propagator the expansion of (Aa;.^)^ ' is 
Xx.p : 1 — > (Z + E) w , as in Section l2~6l Besides, it is easy to prove in the decorated logic that whenever 
/ is pure we get try{f} catch {i\ =>■ g\ \ . . . \i n g n } = f. It follows that this occurs when / is a lambda 
abstraction: try{Xx.(p} catch {«i=>gi| ■ ■ ■ \i n =>gn} = Xx.ip. 

4 Some decorated proofs for exceptions 

According to theorem !3.14| the intended semantics of exceptions can be expressed as a model in the decorated 
logic. Now we show that the decorated logic can also be used for proving properties of exceptions in a concise 
way. Indeed, as for proofs on states in [4], we may consider two kinds of proofs on exceptions: the explicit 
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proofs involve a type of exceptions, while the decorated proofs do not mention any type of exceptions but 
require the specification to be decorated, in the sense of Section [3] In addition, the expansion morphism, 
from the decorated logic to the explicit logic, maps each decorated proof to an explicit one. In this Section 
we give some decorated proofs for exceptions, using the inference rules of Section ETT1 

We know from 3. that the properties of the core tagging and untagging operations for exceptions are dual 
to the properties of the lookup and update operations for states. Thus, we may reuse the decorated proofs 
involving states from [4] . Starting from any one of the seven equations for states in [17] we can dualize this 
equation and derive a property about raising and handling exceptions. This is done here for the annihilation 
catch-raise and for the commutation catch-catch properties. 



4.1 Annihilation catch-raise 

On states, the annihilation lookup-update property means that updating any location with the content of this 
location does not modify the state. A decorated proof of this property is given in [?]. By duality we get the 
following annihilation untag-tag property (Lemma 14. ip . which means that tagging just after untagging, both 
with respect to the same index, returns the given exception. Then this result is used in Proposition 14.21 for 
proving the annihilation catch-raise property: catching an exception and re-raising it is like doing nothing. 

Lemma 4.1 (Annihilation untag-tag). For each i 6 I: 



Proposition 4.2 (Annihilation catch-raise). For each propagator : X — > Y and each i G I: 

try{f} catch {i =>• throuiy.i} = / • 

Proof. By Equation ([2]) and Definition 13.61 we have try{f} catch{i => throwy.i} = V([idy| [] Y otio a] o /). 
By Lemma 14. 11 [idy \[]y ° U ° Ci\ = [idy \ [] Y ], and the unicity property of [idy\ []y] implies that [idy \ [] Y ] = 
idy . Thus try {f} catch {i throwyj} = V/. In addition, since V/ ~ / and / is a propagator we get 
V/ = /. Finally, the transitivity of = yields the proposition. □ 



4.2 Commutation catch-catch 

On states, the commutation update-update property means that updating two different locations can be done 
in any order. By duality we get the following commutation untag-untag property, (Lemma 14.31) which means 
that untagging with respect to two distinct exceptional types can be done in any order. A detailed decorated 
proof of the commutation update- update property is given in [4]. The statement of this property and its 
proof use semi-pure products, which were introduced in [5] in order to provide a decorated alternative to the 
strength of a monad. Dually, for the commutation untag-untag property we use semi-pure coproducts, thus 
generalizing the rules for the coproduct X + 0. 

The coproduct of two types A and B is defined as a type A+B with two pure coprojections q± : A -+ A+B 
and #2 : B A + B, which satisfy the usual categorical coproduct property with respect to the pure 
morphisms. Then the semi-pure coproduct of a propagator : A —¥ C and a catcher k^ : B — > C is 
a catcher [/|fc] v ; : A + B — > C which is characterized, up to strong equations, by the following decorated 
version of the coproduct property: [f\k] o qi ~ / and [f\k] o q 2 = k. Then as usual, the coproduct f' + k': 
A + B — > C + Dofa propagator f'-.A^C and a catcher k' : B — > D is the catcher f' + k' = [q± o f \ q 2 o k] : 
A + B^C + D. 

Whenever / and g are propagators it can be proved that V [f\g] = [f\g]] thus, up to strong equations, we 
can assume that in this case [/ | g] : A + B -+ C is a propagator; it is characterized, up to strong equations, 
by [/ | g] ° qi = f and [f \g]oq 2 = g. 

Lemma 4.3 (Commutation untag-untag). For each i,j € I with i =/= j : 

{d + id Pj )W o cf = {id Pi + c,) (2 ) o cf ) :Q^p i + p j 
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Proposition 4.4 (Commutation catch-catch). For each i,jEl with i^j: 



try{f} catch{i^g \ j=>h} = try{f} catch{j=^h | i=>g} 

Proof. According to Equation ©: try{f} catch {i => g \ j =4- h} = V([id \ [g \ ho Cj] o a] o /). Thus, the 
result will follow from [g \ h o cj] oa = [h \ g o a] ocj. It is easy to check that [g \ h a cj] = [g \ h] o (idp i +Cj), 
so that [g \ ho Cj] o a = [g | h] o {idp i + Cj) o a . Similarly [h \ g o Cj] o cj = [h | g] o [idp j + c{) o Cj hence 
[h | g o a] o cj = [g | h] o (a + idp } ) o cj . Then the result follows from Lemma 1431 □ 



5 Conclusion and future work 

We have presented two logics for dealing with exceptions: the explicit logic C exp i can be interpreted in a 
transparent way, but the decorated logic Cdeco is more concise, closer to the syntax, and it distinguishes the 
effect from the syntax by using decorations. In addition, if required, any decorated proof can be mapped to 
an explicit proof by the expansion morphism F e : Cdeco Cexpi- 

The signature Sig exc from Definition 12.11 can be recovered from the decorated specification S^eco by 
dropping the decorations and forgetting the equations. More formally, this can be stated as follows. Let us 
introduce a third logic C app , called the apparent logic, by dropping all the decorations from the decorated 
logic; thus, the apparent logic is essentially the monadic equational logic with an empty type. The fact of 
dropping the decorations is a morphism of logics Fd : Cdeco C apv , thus we get a span of diagrammatic 
logics: 




^app A-'expl 

We can form the apparent specification S app = Fd^deco, which contains the signature Sig exc . Thus, according 
to Remark 12.141 the intended semantics of exceptions cannot be seen as a set-valued model of T, app . A 
similar span can be built fo other exceptions as well [U |4| . Thanks to this span, the various aspects of the 
computational effect of exceptions are separated: the apparent logic deals with the syntax, the decorated 
logic adds information about the effect, and the explicit logic provides the meaning of the decorations. 
Future work include the following topics. 

• Dealing with n-ary operations involving exceptions. We can add a cartesian structure to our decorated 
logic thanks to the notion of sequential product from [5] . This notion is based on the semi-pure products, 
which are dual to the semi-pure coproducts used in Section [4.21 

• Adding higher-order features. This has been outlined in Sections 12.61 and 13.41 however a more precise 
comparison with [21) remains to be done. 

• The use of a proof assistant for decorated proofs. Thanks to the morphism Fd : Cdeco C app , the 
fact of checking a decorated proof can be split in two parts: first checking the undecorated proof in 
the apparent logic, then checking that the decorations can be added. 

• The combination of computational effects. Since an effect is based on a span of logics, the combination 
of effects might be based on the composition of spans. 

Acknowledgment. We are indebted to Olivier Laurent for pointing out the extension of our approach to 
functional languages. 
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A Handling exceptions in Java 



Definition 12.131 relies on the following description of the handling of exceptions in Java [TU1 Ch. 14]. 

A try statement without a finally block is executed by first executing the try block. Then there is a 
choice: 

1. If execution of the try block completes normally, then no further action is taken and the try 
statement completes normally. 

2. If execution of the try block completes abruptly because of a throw of a value V, then there is a 
choice: 

(a) If the run-time type of V is assignable to the parameter of any catch clause of the try 
statement, then the first (leftmost) such catch clause is selected. The value V is assigned to 
the parameter of the selected catch clause, and the block of that catch clause is executed. 

i. If that block completes normally, then the try statement completes normally; 

ii. if that block completes abruptly for any reason, then the try statement completes abruptly 
for the same reason. 

(b) If the run-time type of V is not assignable to the parameter of any catch clause of the try 
statement, then the try statement completes abruptly because of a throw of the value V. 

3. If execution of the try block completes abruptly for any other reason, then the try statement 
completes abruptly for the same reason. 



In fact, points 2(a)i and 2(a)ii can be merged. Our treatment of exceptions is similar to the one in Java 
when execution of the try block completes normally (point [T]) or completes abruptly because of a throw of an 
exception of constructor i G I (point [2]): indeed, in our framework there is no other reason for the execution 
of a try block to complete abruptly (point [3]). Thus, the description can be simplified as follows. 

A try statement without a finally block is executed by first executing the try block. Then there is a 
choice: 

1. If execution of the try block completes normally, then no further action is taken and the try 
statement completes normally. 

2. If execution of the try block completes abruptly because of a throw of a value V, then there is a 
choice: 

(a) If the run-time type of V is assignable to the parameter of any catch clause of the try 
statement, then the first (leftmost) such catch clause is selected. The value V is assigned to 
the parameter of the selected catch clause, the block of that catch clause is executed, and the 
try statement completes in the same way as this block. 

(b) If the run-time type of V is not assignable to the parameter of any catch clause of the try 
statement, then the try statement completes abruptly because of a throw of the value V. 

This simplified description corresponds to the definition of try{f} catch {ii gi \ . . . \i n => g n \ in Defini- 
tion [221 with points [1] and [2] corresponding respectively to (try) and (catch). 



B About the expansion morphism 

The expansion morphism from the decorated to the explicit logic is defined in Section [3] In this Appendix we 
give some details about the expansion of the decorated rules for case distinction with respect to X + 0, which 
are called rules (e) in Figure [2j According to the definition of the expansion morphism on specifications 
(Figure[T]) since the cocone (id^ '■ A — > X + <— : []% ) is made of pure terms, we can say "for short" that 
its expansion "is" simply (idx,o '■ A — > A + •(— : [] X(] ). However in order to check that the decorated 
rules (e) in Figure [5] are mapped by the expansion morphism to explicit proofs we have to take into account 
another coproduct in the explicit logic. Rules (e) in Figure [2] state that: 
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For each propagator <?W : X — > Y and each catcher k^ : — > Y there is a catcher : X — » Y (h 
is denoted [g\k] in Figure [2]) such that h ^ g and ho [] x = k, and that in addition h is, up to strong 
equivalence, the unique catcher satisfying these conditions. 

Thus, according to the definition of the expansion morphism on specifications (Figure [T]) the expansion of 
these rules must satisfy the following conditions: 

For each terms g\ : X — > Y + E and k : E — >• Y + E there is a term h : X + E — > Y + E such that 
h o normalx = g ° normalx and h o abrupt x = k, and that in addition h is, up to equivalence, the 
unique term satisfying these conditions. 

Clearly, this is satisfied when h = [gi\h] is obtained by case distinction with respect to the coproduct 
(normalx ■ X — > X + E <s— E : abrupt x ). It follows that we can also say, "for short", that the image of the 
coproduct (idx '■ X — > X + -s— : [\x) by the expansion morphism "is" the coproduct (normalx '■ X — > 
X + E E : abrupt x ), as in diagram [1] 
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